Atomic Wallet launches $1M bug bounty amid hacking lawsuit

The developer is offering up to $100,000 to any white hat hacker who can discover a wallet-draining vulnerability.

The developer of Atomic Wallet has launched a $1-million bug bounty to find security flaws in its wallet software, according to a Dec. 18 announcement. The launch comes amid an ongoing class action lawsuit against the developer related to a $100-million hack in June.

According to the post, the development team is extending an invitation to ethical hackers and security experts worldwide to find software bugs and security flaws in its open-source code. White hat hackers who find the most serious type of vulnerability and report it to the team will receive $100,000. This type of vulnerability is defined as any that would allow “the ability to attack/drain a wallet without physical access, installed malware, or social engineering, indicating an actual over-the-internet attack and a flaw in our code or dependencies,” the announcement stated.

If a hacker reports bugs or flaws that do not fit this definition, they will be paid $500 to $10,000, depending on the severity of the vulnerability. For example, the post states that hackers will be paid $5,000 for the discovery of a “high-risk” vulnerability and $10,000 for a “critical-risk” one. The total amount of the bounty pool for all discoveries is $1 million.

Read more

Source: https://cointelegraph.com/news/atomic-wallet-launches-1-million-bug-bounty-amid-hacking-lawsuit